This post provides detailed analysis and an exploit achieving remote code execution for the recently fixed Chrome vulnerability that was observed by Google to be exploited in the wild. Patch Analysis The release notes from Google are short on information as usual: [$N/A][936448] High CVE-2019-5786: Use-after-free in FileReader. Reported by Clement Lecigne of Google’s Threat … Continue reading CVE-2019-5786: Analysis & Exploitation of the recently patched Chrome vulnerability